Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/ADCC819C6F1C11EEA6EDF2894AD9E6FC.roa
File: ADCC819C6F1C11EEA6EDF2894AD9E6FC.roa (raw, json)
Hash identifier: 0EsFQL/056qkK52lVV1RuJFjZ4sGqQwRLakj5+kuntc=
Subject key identifier: 49:93:55:A3:E7:04:B8:8E:12:39:C8:D3:7D:E8:FD:F4:EF:5D:B0:BE
Certificate issuer: /CN=F369591CAF/serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Certificate serial: 0107
Authority key identifier: C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/ADCC819C6F1C11EEA6EDF2894AD9E6FC.roa
Signing time: Fri 20 Oct 2023 07:45:46 +0000
ROA not before: Fri 20 Oct 2023 07:45:43 +0000
ROA not after: Mon 20 Oct 2025 07:45:43 +0000
asID: 15964
IP address blocks: 154.72.145.0/24 maxlen: 24
154.72.149.0/24 maxlen: 24
154.72.150.0/24 maxlen: 24
154.72.154.0/24 maxlen: 24
154.72.158.0/24 maxlen: 24
154.72.159.0/24 maxlen: 24
154.72.168.0/24 maxlen: 24
154.72.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.mft
rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 12 May 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263 (0x107)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CAF/serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Validity
Not Before: Oct 20 07:45:43 2023 GMT
Not After : Oct 20 07:45:43 2025 GMT
Subject: CN=6532302a-7d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:61:3f:67:9c:9d:52:cc:5e:2c:a2:17:0e:ce:
b0:f3:49:5c:60:d8:53:2f:73:1c:17:e7:b7:28:c7:
d2:4d:0f:9d:05:62:35:6f:62:87:18:04:db:d5:de:
bc:e2:70:1e:0a:41:e6:eb:b8:51:88:a7:15:00:79:
b4:dd:3f:0c:46:a4:1e:e6:13:05:0e:92:0f:48:55:
dc:87:17:57:fb:88:eb:d8:44:e2:05:03:2e:64:c5:
9d:e6:53:c3:4c:66:5f:20:52:6a:a2:2c:eb:42:ed:
58:33:e6:1b:9f:98:51:0e:49:f9:a1:22:0c:8d:45:
f0:16:1c:79:fd:7e:61:e5:fd:3c:eb:d8:f8:3b:66:
6a:b6:78:95:fc:e7:88:a6:ec:47:50:aa:d6:32:7f:
7f:b7:97:23:49:28:c4:5f:44:76:01:19:ad:00:f5:
86:33:fe:da:4c:e3:d4:9c:92:6a:9c:b4:9b:e9:6b:
73:02:bb:5d:f6:39:a4:1d:06:fe:f7:e7:04:0b:14:
83:0c:af:f6:f1:95:65:62:ae:81:9c:d1:d1:6c:e6:
a7:8d:c4:f8:49:80:56:60:f0:9e:b2:65:7a:ea:68:
bb:8e:d2:0f:7a:d5:cd:58:54:76:1a:fb:3d:45:97:
e6:c7:ed:6a:e7:85:5b:13:63:41:00:2c:16:a9:b4:
27:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:93:55:A3:E7:04:B8:8E:12:39:C8:D3:7D:E8:FD:F4:EF:5D:B0:BE
X509v3 Authority Key Identifier:
keyid:C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/ADCC819C6F1C11EEA6EDF2894AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.72.145.0/24
154.72.149.0-154.72.150.255
154.72.154.0/24
154.72.158.0/23
154.72.168.0/24
154.72.172.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:fc:f5:99:5b:bb:e3:9b:1a:09:35:12:67:d2:f2:94:48:92:
ea:76:47:b2:ef:09:97:8d:7e:dd:15:bd:61:f1:08:7c:f9:b6:
cb:91:72:a9:75:36:3c:83:20:40:8e:c9:74:b5:0a:c1:96:18:
49:a5:1b:b9:2d:72:42:69:a7:74:eb:75:8f:92:d0:04:19:bf:
d1:9d:2a:c2:ae:a8:11:bb:8b:8f:58:26:e6:fc:40:74:f8:0d:
9e:f7:ca:db:be:fd:d8:e1:e9:79:2d:5e:59:1f:7b:e1:9d:57:
a5:88:ef:02:73:b2:7c:b0:17:a0:28:e6:40:1b:b0:ed:f9:a5:
ec:76:2b:f9:9a:56:4b:71:d0:1e:eb:69:4e:23:9d:a1:da:3c:
1d:dd:ad:82:83:fb:98:5e:eb:a7:97:36:3e:fc:f1:44:5f:c2:
16:b0:92:f5:6a:ce:67:bd:8a:d7:2c:af:ec:ba:38:09:ae:4d:
66:22:60:9b:d8:ca:17:94:97:98:82:86:93:e6:b7:7b:d8:e8:
23:22:29:86:56:d1:be:9c:c0:b6:89:7b:64:17:3c:50:4c:fc:
5d:c4:56:5e:6c:2d:ac:ef:46:fd:c2:cc:98:e5:8e:e0:80:05:
f4:9d:ef:e8:3c:52:88:86:9b:5c:61:f1:25:62:b9:c8:df:cc:
17:7c:67:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 02:53:49 2024 by rpki-client on console-ams.rpki-client.org